Oval Definition:	oval:org.opensuse.security:def:20173733
Revision Date: 2022-06-30 Version: 1 Title: CVE-2017-3733 Description: During a renegotiation handshake if the Encrypt-Then-Mac extension is negotiated where it was not in the original handshake (or vice-versa) then this can cause OpenSSL 1.1.0 before 1.1.0e to crash (dependent on ciphersuite). Both clients and servers are affected. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-3733 Mitre CVE-2017-3733 SUSE CVE-2017-3733 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.3 openSUSE Leap 15.4 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server for SAP Applications 11 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND openssl is not affected Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information virtualbox-guest-kmp-default-5.2.10_k4.12.14_lp150.11-lp150.3 is installed AND virtualbox-guest-kmp-default is signed with openSUSE key OR virtualbox-guest-tools-5.2.10-lp150.3 is installed AND virtualbox-guest-tools is signed with openSUSE key OR virtualbox-guest-x11-5.2.10-lp150.3 is installed AND virtualbox-guest-x11 is signed with openSUSE key Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND openssl is not affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP1 is installed AND openssl is not affected OR Package Information SUSE Linux Enterprise Desktop 12 SP2 is installed AND openssl is affected Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP4 is installed OR SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND openssl is not affected Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP1 is installed OR SUSE Linux Enterprise Server 12 SP2 is installed AND openssl is not affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP1 is installed OR SUSE Linux Enterprise Server 12 SP1 is installed OR SUSE Linux Enterprise Server 12 SP2 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP1 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND openssl is not affected Definition Synopsis SUSE Linux Enterprise Server 11 SP4 is installed AND openssl is not affected Definition Synopsis openSUSE Leap 15.3 is installed AND Package Information virtualbox-guest-tools-6.1.20-lp153.1.8 is installed AND virtualbox-guest-tools is signed with openSUSE key OR virtualbox-guest-x11-6.1.20-lp153.1.8 is installed AND virtualbox-guest-x11 is signed with openSUSE key OR virtualbox-kmp-default-6.1.20_k5.3.18_57-lp153.1.2 is installed AND virtualbox-kmp-default is signed with openSUSE key Definition Synopsis openSUSE Leap 15.4 is installed AND Package Information virtualbox-guest-tools-6.1.32-lp154.1.83 is installed AND virtualbox-guest-tools is signed with openSUSE key OR virtualbox-guest-x11-6.1.32-lp154.1.83 is installed AND virtualbox-guest-x11 is signed with openSUSE key OR virtualbox-kmp-default-6.1.32_k5.14.21_150400.22-lp154.1.67 is installed AND virtualbox-kmp-default is signed with openSUSE key
BACK